First, let me me say that I am thoroughly enjoying the Kubuntu experience. Everything works, and works as well as my old IBM T20 laptop will let it!! Conceptually, however, I have something that I can't quite shake.
One thing that has always bothered me about Kubuntu (and all the *ubuntu's for that matter), is the denial of root use - at least out of the box. I just went to the Kubuntu book and in the Sudo and Root chapter it states:
Now I know that full sudo access is generally set up only for the first "normal" user, and there is no separate password for root, by default. However, the implication that root access can cause rogue applications to run amok while the use of unmitigated sudo somehow prevents that, truly baffles me.
My normal user can run any root level app simply by being prompted for my normal password. Therefore, should anyone somehow obtain my normal user password, they could run anything at rppt level they so chose.
So, how does the use of sudo actually protect my system better than embracing root usage would protect it?
One thing that has always bothered me about Kubuntu (and all the *ubuntu's for that matter), is the denial of root use - at least out of the box. I just went to the Kubuntu book and in the Sudo and Root chapter it states:
When you run an application that requires root privileges, sudo will ask you to input your normal user password. This ensures that rogue applications cannot damage your system, and serves as a reminder that you are about to perform administrative actions which require you to be careful!
My normal user can run any root level app simply by being prompted for my normal password. Therefore, should anyone somehow obtain my normal user password, they could run anything at rppt level they so chose.
So, how does the use of sudo actually protect my system better than embracing root usage would protect it?
Comment